Legal claims defining the scope of protection, as filed with the USPTO.
2. The UE of claim 1, wherein the network node is a source access and mobility management function (AMF).
3. The UE of claim 1, wherein the set of key generation parameters comprises a relay key identifier, a second freshness parameter, or a combination thereof.
4. The UE of claim 1, wherein the set of key generation parameters is generated by the network node.
5. The UE of claim 1, wherein the second message is encrypted, integrity protected, or both.
6. The UE of claim 1, wherein the first nonce is the first freshness parameter.
7. The UE of claim 1, wherein the first freshness parameter comprises an uplink non-access stratum count or a random number.
8. The UE of claim 1, wherein the identity of the UE is indicated by a 5G global unique temporary identifier.
9. The UE of claim 1, wherein the authentication information is included as information elements of a non-access stratum container.
10. The UE of claim 1, wherein the authentication information comprises one or more of a next generation key set identifier, uplink non-access stratum (NAS) count, key access type, or NAS message authentication code.
11. The UE of claim 1, wherein the one or more processors, when deriving the relay session key, are configured to derive the relay session key further based at least in part on one or more of the first freshness parameter or a second freshness parameter from the network node.
13. The network node of claim 12, wherein the one or more processors, when deriving the relay key, are configured to derive the relay key further based at least in part on a key access type indicated in the authentication information from the remote UE.
14. The network node of claim 12, wherein the one or more processors, when receiving the authentication information, are configured to receive the authentication information as information elements of a non-access stratum container.
15. The network node of claim 12, wherein the one or more processors, when verifying the authentication information, are configured to verify one or more of a next generation key set identifier, an uplink non-access stratum (NAS) count, a key access type, or a NAS message authentication code with the security context information of the remote UE based at least in part on the identity of the remote UE.
16. The network node of claim 12, wherein the identity of the remote UE is indicated by a 5G global unique temporary identifier.
17. The network node of claim 12, wherein the one or more processors are further configured to transmit a second freshness parameter based at least in part on whether the first freshness parameter is an uplink non-access stratum (NAS) count.
18. The network node of claim 17, wherein the second freshness parameter is the uplink NAS count, a downlink NAS count, a random number, or a combination thereof.
19. The network node of claim 12, wherein the one or more processors are further configured to transmit the relay key to the relay UE.
21. The method of claim 20, wherein the set of key generation parameters comprises a relay key identifier, a second freshness parameter, or a combination thereof.
22. The method of claim 20, wherein the second message is encrypted, integrity protected, or both.
23. The method of claim 20, wherein the first nonce is the first freshness parameter.
24. The method of claim 20, wherein the first freshness parameter comprises an uplink non-access stratum count or a random number.
25. The method of claim 20, wherein deriving the relay session key comprises deriving the relay session key further based at least in part on one or more of the first freshness parameter or a second freshness parameter from the network node.
27. The method of claim 26, wherein deriving the relay key includes deriving the relay key further based at least in part on a key access type indicated in the authentication information from the remote UE.
28. The method of claim 26, wherein verifying the authentication information includes verifying one or more of a next generation key set identifier, an uplink non-access stratum (NAS) count, a key access type, or a NAS message authentication code with the security context information of the remote UE based at least in part on the identity of the remote UE.
29. The method of claim 26, further comprising transmitting a second freshness parameter based at least in part on whether the first freshness parameter is an uplink non-access stratum (NAS) count, and wherein the second freshness parameter is the uplink NAS count, a downlink NAS count, a random number, or a combination thereof.
30. The method of claim 26, further comprising transmitting the relay key to the relay UE.
Unknown
August 6, 2024
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.